$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa File: 9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa (raw, json) Hash identifier: 4s7irTp5YZt4t4JUuvpt1hajQ6RV33feyUo5ylQX8mc= Subject key identifier: D0:B4:4C:E5:08:2A:0F:61:BF:27:E7:69:E8:D8:14:67:D3:0D:80:CF Certificate issuer: /CN=A91E9467/serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Certificate serial: 0584 Authority key identifier: 52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa Signing time: Fri 05 Jun 2026 00:28:51 +0000 ROA not before: Fri 05 Jun 2026 00:28:51 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 136308 IP address blocks: 103.150.152.0/23 maxlen: 23 103.150.152.0/24 maxlen: 24 103.150.153.0/24 maxlen: 24 202.12.80.0/22 maxlen: 22 202.12.80.0/23 maxlen: 23 202.12.80.0/24 maxlen: 24 202.12.81.0/24 maxlen: 24 202.12.82.0/23 maxlen: 23 202.12.82.0/24 maxlen: 24 202.12.83.0/24 maxlen: 24 2405:3e40::/32 maxlen: 32 2405:3e40::/48 maxlen: 48 2405:3e40:1::/48 maxlen: 48 2405:3e40:2::/48 maxlen: 48 2405:3e40:3::/48 maxlen: 48 2405:3e40:4::/48 maxlen: 48 2405:3e40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9467, serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Validity Not Before: Jun 5 00:28:51 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a221842-e9d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f7:40:08:a7:18:8e:2f:86:ba:a6:b3:3f:8f: f4:eb:75:e9:62:2b:b4:f8:75:2b:89:82:a9:6b:31: 44:65:e7:5c:f7:c9:5c:0e:45:3b:c5:96:90:b7:4e: 30:9c:36:af:ab:3a:00:a0:26:9e:19:5c:2e:ac:0a: 35:bd:ea:50:0a:34:50:ee:3d:ba:cd:11:72:ba:88: 76:8d:65:ad:28:1b:90:d0:b9:34:4c:6c:57:b1:3b: 22:63:2c:37:6b:64:01:c2:01:96:7d:8a:c5:4e:84: b0:77:43:d3:04:0e:bc:3a:3e:a6:a6:73:c7:aa:2a: ff:71:86:16:23:cf:a1:26:86:6b:13:f2:99:d5:36: 81:f6:62:0b:cd:29:e5:db:fe:d4:04:77:3d:9d:a7: 6c:61:01:79:39:79:de:6c:ec:7d:20:dc:2f:d4:13: 6d:ac:3c:5c:b4:0b:2b:21:d2:73:db:16:3e:eb:a0: f6:71:27:91:20:fa:bf:9c:6a:69:f6:1e:49:c9:7d: a9:7e:44:cf:32:ea:61:37:b2:df:95:f5:7c:2a:8c: 5e:85:71:f8:9e:15:cd:cc:c8:eb:6f:63:47:1a:a4: d1:39:e2:51:8b:f3:ae:fb:a2:86:ef:94:e4:0a:62: 28:df:d0:97:9e:43:9d:3c:de:00:b9:74:32:15:34: 7d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B4:4C:E5:08:2A:0F:61:BF:27:E7:69:E8:D8:14:67:D3:0D:80:CF X509v3 Authority Key Identifier: keyid:52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.152.0/23 202.12.80.0/22 IPv6: 2405:3e40::/32 Signature Algorithm: sha256WithRSAEncryption 69:ea:92:0e:79:36:73:05:80:86:ad:16:71:a1:bb:c6:d4:c4: 9b:a9:cd:ea:12:da:5f:b6:f2:97:09:69:24:a3:a4:3a:ef:0c: e8:94:e9:9c:5d:82:c3:b1:a8:ff:0d:1b:7e:48:e1:f7:11:5a: c8:88:0e:73:26:56:96:64:5d:f9:18:79:60:ff:78:61:c1:99: ba:64:d0:62:8f:19:ef:3b:4c:76:aa:52:0b:fe:8f:e3:d9:ee: 30:d4:e5:2b:0c:08:c0:15:6f:6b:01:3c:e6:c4:0f:00:ad:45: c3:69:18:65:96:c0:0c:cd:b3:45:22:b8:5a:79:fe:bf:49:4f: 24:9c:3e:f1:7c:dd:2a:ca:15:3a:05:b7:1b:ba:4a:16:9b:16: 16:10:4a:08:1d:83:26:f1:69:ad:7b:ab:d0:27:f5:d4:f4:36: 66:9b:e4:c5:d4:fc:b8:1f:56:77:86:fc:94:d1:59:ad:ff:64: 37:a1:da:75:8d:7f:b7:2c:e6:b4:d1:5a:56:d1:28:aa:20:9d: f2:5c:75:5b:b7:78:ef:6f:b4:df:4e:12:0c:37:57:3d:65:23: bf:4e:d6:56:5c:a8:df:26:83:8c:28:e2:5c:45:4c:de:37:22: fc:ac:99:bb:2f:ce:27:d5:a5:e3:57:cf:43:7d:e0:45:2d:28: b8:07:2b:81 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0NjcxMTAvBgNVBAUTKDUyQkU5RERFOTU2OEZFNEFEQ0EwRjM0NUIzNjE3QTYz QzMwNzU4NDUwHhcNMjYwNjA1MDAyODUxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyMTg0Mi1lOWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvdACKcYji+GuqazP4/063XpYiu0+HUriYKpazFEZedc98lcDkU7xZaQt04w nDavqzoAoCaeGVwurAo1vepQCjRQ7j26zRFyuoh2jWWtKBuQ0Lk0TGxXsTsiYyw3 a2QBwgGWfYrFToSwd0PTBA68Oj6mpnPHqir/cYYWI8+hJoZrE/KZ1TaB9mILzSnl 2/7UBHc9nadsYQF5OXnebOx9INwv1BNtrDxctAsrIdJz2xY+66D2cSeRIPq/nGpp 9h5JyX2pfkTPMuphN7LflfV8KoxehXH4nhXNzMjrb2NHGqTROeJRi/Ou+6KG75Tk CmIo39CXnkOdPN4AuXQyFTR9AQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFNC0TOUI Kg9hvyfnaejYFGfTDYDPMB8GA1UdIwQYMBaAFFK+nd6VaP5K3KDzRbNhemPDB1hF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQ2Ny83NzBCNEYxQTUy NkYxMUVDQkM1MEVCMTdDNEY5QUUwMi9VcjZkM3BWb19rcmNvUE5GczJGNlk4TUhX RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyNmQzcFZvX2tyY29QTkZzMkY2WThNSFdFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk0NjcvNzcwQjRGMUE1MjZGMTFFQ0JDNTBFQjE3QzRGOUFFMDIvOUQ5QjJFN0E2 RDMyMTFGMEE2OEE4QTU4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ5aYAwQCygxQMA0EAgACMAcDBQAkBT5AMA0GCSqGSIb3DQEBCwUA A4IBAQBp6pIOeTZzBYCGrRZxobvG1MSbqc3qEtpftvKXCWkko6Q67wzolOmcXYLD saj/DRt+SOH3EVrIiA5zJlaWZF35GHlg/3hhwZm6ZNBijxnvO0x2qlIL/o/j2e4w 1OUrDAjAFW9rATzmxA8ArUXDaRhllsAMzbNFIrhaef6/SU8knD7xfN0qyhU6Bbcb ukoWmxYWEEoIHYMm8Wmte6vQJ/XU9DZmm+TF1Py4H1Z3hvyU0Vmt/2Q3odp1jX+3 LOa00VpW0SiqIJ3yXHVbt3jvb7TfThIMN1c9ZSO/TtZWXKjfJoOMKOJcRUzeNyL8 rJm7L84n1aXjV89DfeBFLSi4ByuB -----END CERTIFICATE-----Generated at Wed Jun 17 09:28:51 2026 by rpki-client